CVE-2015-10126 MEDIUM

CVE-2015-10126: Easy2Map Photos Plugin sql injection

Vendor N/A
Product Easy2Map Photos Plugin
Weakness CWE-89 · SQLi
Published October 6, 2023
Last update June 16, 2025

CVSS base score

6.3/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

What the vulnerability does

01Description

A vulnerability classified as critical was found in Easy2Map Photos Plugin 1.0.1 on WordPress. This vulnerability affects unknown code. The manipulation leads to sql injection. The attack can be initiated remotely. Upgrading to version 1.1.0 is able to address this issue. The patch is identified as 503d9ee2482d27c065f78d9546f076a406189908. It is recommended to upgrade the affected component. VDB-241318 is the identifier assigned to this vulnerability.

Key dates

02Disclosure timeline

October 6, 2023 CVE published
June 16, 2025 Record updated